This script automates the pushes from github (or bitbucket) so they can be directly provisioned (pulled / cloned) on the right server and location (the gitwebhook and the location where you want to deploy your code have to be on the same server).
Use the following steps to set up a new gitwebhook on your github (or bitbucket) account & server:
- Go to your Repository and click on "Settings", then click on "Add webhook"
- Type in the path where you want to install your gitwebhook: https://<example.com>/gitwebhook/index.php (or as subdomain, etc.)
- Add a secret of your choice
- Select the option "Just the push event.", then click on "Add webhook"
-
Go to your Repository and click on "Settings", then click on "Webhooks"
-
Click on "Add webhook"
-
Type in the path where you want to install your gitwebhook: https://<example.com>/gitwebhook/index.php?bitbucket_secret=<secret> (or as subdomain, etc.)
(replace <secret> with a Secret of your choice)
-
Go to the directory where you want to install the gitwebhook (has to be accessible from outside / the web)
cd <yourWebsiteFolder>
(e.g. /var/www/example.com/httpdocs/)
-
Clone the gitwebhook
git clone https://github.com/iocron/gitwebhook.git && cd gitwebhook
-
Copy configuration file and htaccess so you can use them:
cp configs/config_example.json configs/config.json && cp .htaccess_example .htaccess && chmod 600 configs/config.json
(Note: If you are a bitbucket user, then edit the .htaccess and uncomment the Bitbucket User Block for better security)
-
Fill out the config.json Settings (see options at the bottom):
vim configs/config.json
-
Generate a SSH-Key first:
ssh-keygen -t rsa -b 4096 -C "your_email@example.com"
Further reading: Github - Generate a new SSH Key
(Note: When you do the setup for another user as admin / root, then save the key to /var/www/<domain>/.ssh/id_rsa instead and chown the rights to the webuser)
-
Copy the public key and add it to Github / Bitbucket as the Deploy Key
cat ~/.ssh/id_rsa.pub
(Note: When you do the setup for another user as admin / root, then use: cat /var/www/<domain>/.ssh/id_rsa.pub instead)
Further Reading:
Github - Setup deploy key
Bitbucket - Setup deploy key
-
Add the Github & Bitbucket Host Key to your Known Hosts (if not already done):
ssh-keyscan -t rsa github.com >> ~/.ssh/known_hosts && ssh-keyscan -t rsa bitbucket.org >> ~/.ssh/known_hosts
(Note: When you do the setup for another user as admin / root, then use the following example (adjust the paths to your needs):
ssh-keyscan -t rsa github.com >> /var/www/example.com/.ssh/known_hosts && ssh-keyscan -t rsa bitbucket >> /var/www/example.com/.ssh/known_hosts && chmod 600 /var/www/example.com/.ssh/known_hosts
instead and chown the rights to the webuser) -
Make a test connection:
ssh -Tv git@github.com
or
ssh -Tv git@bitbucket.org
(Note: When you do the setup for another user as admin / root, then test with:
su -p -c "ssh -Tv git@github.com" <username>
instead) -
Make a test commit to your Github / Bitbucket Repo and see if the deployed repo directory / code on your server has changed as well, have fun.
Tips: You can also use the gitwebhook on a different domain (e.g. Subdomain) and deploy to a different location on your server if you like (needs to be the same webuser because of access rights). If you want to use the gitwebhook with multiple git repositories, then copy the "gitwebhook": {...} block and paste it below the first "gitwebhook": {...} block (don't forget to add a "," at the end of each "gitwebhook": {...}, block).
// If you are using more than one repository in your config, then replace "gitwebhook" with a unique identifier / name of your choice (e.g. "example.com"), otherwise leave it as it is already
"gitwebhook": { ... }
// Your URL to the Repository (preferably use a ssh url if it's a private repo)
"repository":"git@github.com:octocat/Hello-World.git",
// Your secret key (created from the previous steps "On Github" / "On Bitbucket")
"secret":"<secret>",
// Your Deployment directory
"deployDir":"/var/www/example.com/httpdocs",
// Notifications about the deployment will be sent to your email (leave empty if none)
"mail":"mail@example.com",
// Mail Subject Prefix (the subject will be completed by the error type if anything bad happens)
"mailSubject":"Gitwebhook - "
// Executes the Git Commands as another Linux User (Optional, and only if this is allowed by your access settings)
"linuxUser":""
// Turn on Debug mode if you need to (0 = off, 1 = on). In addition the log files will be written in logs/
"debug":"1"
If you run into any problems and the git data doesn't get pulled correctly, then look into the webhook section on github (Settings -> Webhooks) and click on the webhook, further below you'll see the "Recent Deliveries", you can inspect them and even trigger the events manually again if necessary.
You'll also get all the necessary informations through the notification emails if something goes wrong, check them out.
- Gitwebhook always clones, but never pulls:
You might have some permission issues and gitwebhook can't access your deployDir folder, please check the permissions of Gitwebhook and your deployDir (both need to have similar access rights through the same webuser) and/or check if the right host key has been added. - Sometimes there are problems initializing (cloning) the project for the first time, in this case clone the project manually and let gitwebhook handle the pulls only